Bump the python-requirements group across 1 directory with 16 updates #111

	name: Validate bicep scripts
	on:
	workflow_dispatch:
	push:
	branches:
	- main
	pull_request:
	branches:
	- main

	jobs:
	build:
	runs-on: ubuntu-latest
	permissions:
	security-events: write
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Azure CLI script
	uses: azure/CLI@v2
	with:
	inlineScript: \|
	export DOTNET_SYSTEM_GLOBALIZATION_INVARIANT=1
	az bicep lint --file infra/main.bicep --diagnostics-format sarif > bicep-results.sarif

	- name: Upload results
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: bicep-results.sarif
	psrule:
	runs-on: ubuntu-latest
	permissions:
	security-events: write
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Run PSRule analysis
	uses: microsoft/ps-rule@v2.9.0
	with:
	modules: PSRule.Rules.Azure
	baseline: Azure.Pillar.Security
	inputPath: infra/*.test.bicep
	outputFormat: Sarif
	outputPath: reports/ps-rule-results.sarif
	summary: true
	continue-on-error: true

	env:
	PSRULE_CONFIGURATION_AZURE_BICEP_FILE_EXPANSION: 'true'
	PSRULE_CONFIGURATION_AZURE_BICEP_FILE_EXPANSION_TIMEOUT: '30'

	- name: Upload results to security tab
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: reports/ps-rule-results.sarif

Provide feedback